add restart option

add a proxmox condition to activate neccessary entries in sshd_config
2025-06-28 15:28:03 +02:00 · 2025-06-28 15:27:33 +02:00
3 changed files with 15 additions and 0 deletions
--- a/roles/deploy_container_lldap/templates/docker-compose.yml.j2
+++ b/roles/deploy_container_lldap/templates/docker-compose.yml.j2
@ -3,6 +3,7 @@ services:
  lldap:
    image: lldap/lldap:${LLDAP_VERSION:-stable}
    container_name: lldap
+    restart: always
    volumes:
      - "lldap_data:/data"
      - "./secrets:/secrets:ro"
--- a/roles/server_install_ssh/tasks/main.yml
+++ b/roles/server_install_ssh/tasks/main.yml
@ -4,6 +4,11 @@
    update_cache: true
    cache_valid_time: 3600

+- name: Detect if system is Proxmox (by checking /etc/pve)
+  stat:
+    path: /etc/pve
+  register: pve_check
+
 - name: OpenSSH Server installieren
  ansible.builtin.apt:
    name: openssh-server
@ -39,3 +44,5 @@
    group: root
    mode: '0644'
  notify: Restart SSH
+  vars:
+    is_proxmox: "{{ pve_check.stat.exists }}"
--- a/roles/server_install_ssh/templates/sshd_config.j2
+++ b/roles/server_install_ssh/templates/sshd_config.j2
@ -1,7 +1,14 @@
 # OpenSSH server configuration (managed by Ansible)
 Port {{ ssh_port }}
 Protocol 2
+
+{% if is_proxmox %}
+PermitRootLogin prohibit-password
+AcceptEnv LANG LC_*
+{% else %}
 PermitRootLogin no
+{% endif %}
+
 PasswordAuthentication no
 ChallengeResponseAuthentication no
 UsePAM yes
Author	SHA1	Message	Date
=	e0da502c59	add restart option	2025-06-28 15:28:03 +02:00
=	7ac8d9748f	add a proxmox condition to activate neccessary entries in sshd_config	2025-06-28 15:27:33 +02:00